System and Method of Accessing Keys for Secure Messaging

PublishedDecember 3, 2013

Assigneenot available in USPTO data we have

InventorsMichael K. Brown Michael S. Brown Herbert A. Little Neil P. Adams

Technical Abstract

Patent Claims

26 claims

Legal claims defining the scope of protection, as filed with the USPTO.

1. A method for handling on an electronic device a secure message to be sent from the electronic device to a recipient, the method comprising: receiving data at the electronic device about at least one of a security key or certificate associated with the recipient; using the received data to perform a check with respect to using the at least one of the security key or certificate associated with the recipient to send the secure message to the recipient, wherein an issue exists due to the check; providing, via a user interface on the electronic device, information describing the issue and at least one potential action for resolving the issue; and resolving the issue associated with using the at least one of the security key or certificate through use of the information provided and user input received via the user interface.

2. The method of claim 1 , further comprising sending the secure message to the recipient.

3. The method of claim 1 , wherein the issue involves a check failure, and a reason for the check failure is provided via the user interface.

4. The method of claim 1 , wherein the at least one of the security key or certificate is associated with a public key and the secure message is to be encrypted using the recipient's public key.

5. The method of claim 4 , further comprising: creating a list of all recipients for the secure message; receiving data about the recipients' public keys that includes security key or certificate information associated with the recipients; and performing the check with respect to the certificate information associated with the recipients.

6. The method of claim 1 further comprising: determining whether at least one certificate or security key for an intended recipient can be located; and wherein information describing the issue that is provided comprises the intended recipient's certificate or security key was not located.

7. The method of claim 6 , further comprising canceling sending the secure message to a recipient whose certificate or security key was not located.

8. The method of claim 6 , further comprising removing the recipient whose certificate or security key was not located before sending the secure message to another recipient.

9. The method of claim 6 , further comprising determining whether the certificate or security key for the intended recipient is locally available on the electronic device.

10. The method of claim 6 , further comprising determining whether the certificate or security key for the intended recipient is remotely available.

11. The method of claim 6 , further comprising collating certificates that correspond to the recipients before performing the check.

12. The method of claim 1 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes whether the recipient's certificate or security key is permitted to be used and the information describing the issue indicates that the recipient's certificate or security key is not permitted to be used.

13. The method of claim 12 , wherein the data about whether the recipient's certificate is permitted to be used is based on a usage field contained in the certificate.

14. The method of claim 12 , wherein the data about whether the recipient's certificate is permitted to be used is based on a control file installed on the electronic device that specifies which certificates are allowed to be used.

15. The method of claim 1 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes strength of the recipient's certificate or security key and the issue is directed to whether the recipient's certificate or security key is permitted to be used based upon the strength of the recipient's certificate or security key.

16. The method of claim 1 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes whether the recipient's certificate or security key is trusted and a decision to include the recipient for the secure message is based upon whether the recipient's certificate or security key is trusted.

17. The method of claim 1 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes validity and revocation status of the recipient's certificate and a decision to include the recipient for the secure message is based upon the validity and revocation status of the recipient's certificate.

18. A non-transitory, computer-readable storage medium comprising instructions executable by a processor in an electronic device that upon execution cause the electronic device to be operable to: receive data at the electronic device about at least one of a security key or certificate associated with a recipient of a secure message to be sent from the electronic device; use the received data to perform a check with respect to using the at least one security key or certificate associated with the message recipient to send the secure message to the recipient, wherein an issue exists due to the check; provide, via a user interface on the electronic device, information describing the issue and at least one potential action for resolving the issue; and resolve the issue associated with using the at least one of the security key or certificate through use of the information provided and user input received via the user interface.

19. The medium of claim 18 , the instructions further operable, when executed, to cause the electronic device to send the secure message after resolution of the issue.

20. An apparatus for handling on an electronic device a secure message to be sent from the electronic device to a recipient, the apparatus comprising: a secure message processing module for use with a messaging client that sends electronic messages; wherein the secure message processing module receives data about at least one of a security key or certificate associated with the recipient; wherein the secure message processing module uses the received data to perform a check with respect to using the at least one of the security key or certificate associated with the recipient to send the secure message to the recipient, wherein an issue exists based upon the check; and wherein the secure message processing module is configured to provide, via a user interface of the electronic device, information describing the issue and at least one potential action for resolving the issue; and wherein the secure message processing module is further configured to resolve the issue associated with using the at least one of the security key or certificate through use of the information and user input received via the user interface.

21. The apparatus of claim 20 , wherein the secure message processing module is further configured to send the secure message after resolution of the issue.

22. The apparatus of claim 20 , wherein the secure message processing module is configured to determine whether at least one of the certificate or security key for an intended recipient can be located and to provide information describing the issue that the intended recipient's certificate or security key was not located.

23. The apparatus of claim 20 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes whether the recipient's certificate or security key is permitted to be used and the information describing the issue indicates that the recipient's certificate or security key is not permitted to be used.

24. The apparatus of claim 20 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes strength of the recipient's certificate or security key and the issue is directed to whether the recipient's certificate is or security key is permitted to be used based upon the strength of the recipient's certificate or security key.

25. The apparatus of claim 20 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes whether the recipient's certificate or security key is trusted and a decision to include the recipient for the secure message is based upon whether the recipient's certificate or security key is trusted.

26. The apparatus of claim 20 , wherein the received data about the at least one of the security key or certificate associated with the recipient includes a validity and revocation status of the recipient's certificate or security key and a decision to include the recipient for the secure message is based upon the validity and revocation status of the recipient's certificate or security key.

Patent Metadata

Filing Date

Unknown

Publication Date

December 3, 2013

Inventors

Michael K. Brown

Michael S. Brown

Herbert A. Little

Neil P. Adams

Want to explore more patents?

Browse 5M+ US patents with plain-English claim translations and AI-generated analysis.

Browse All Patents Try Prior Art Search